CVSS 3.1 Score 8.8 of 10 (high)


Published Apr 16, 2024
Updated: Apr 17, 2024


CVE-2024-21114 is a vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization, specifically affecting versions prior to 7.0.16. This vulnerability can be easily exploited by a low privileged attacker with access to the infrastructure where Oracle VM VirtualBox is running, potentially leading to a compromise of the system. While the primary impact is on Oracle VM VirtualBox, it may also have significant consequences for other products. Successful exploitation of this vulnerability could result in a takeover of Oracle VM VirtualBox, with confidentiality, integrity, and availability impacts. The CVSS 3.1 Base Score for this vulnerability is 8.8. To remediate the issue, organizations should update their Oracle VM VirtualBox to version 7.0.16 or later to mitigate the risk posed by this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-21114 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options